Favorites
Tools
Dr.Zero Chatbot
Notifications
Guide 2020-06-10
Version history 2020-06-10

latestReport
11.05 04:11
VST32License.exe
11.05 03:11
VST32License.exe
11.03 01:11
DocTromTinNhan.exe
11.01 06:11
MPDW-constraints.vbs
11.01 06:11
87f3f2.exe
11.01 06:11
Client-built.exe
11.01 06:11
norm.exe
11.01 06:11
chrome_131.exe
11.01 06:11
kjrhjijawdkrjhh.exe
11.01 09:11
Calibre_Installer.exe

Latest News
11.05 01:11
메가존클라우드-파이오링크, 클라우드 보안...
11.05 01:11
프로페셔널 헤어케어 브랜드 레삐, ‘20...
11.05 01:11
Chinese Group Accused ...
11.05 01:11
25년 정보보호 전자공시시스템 고도화 및...
11.05 01:11
KISA, 민원 응대 보호시스템 전사 확대
11.05 01:11
아늑샵, 2024년 4분기 '한국소비자인...
11.05 01:11
크라운슬립, 프리미엄 구스 이불 론칭 기...
11.05 01:11
Google Warns of Active...
11.05 12:11
안랩, 2024년 3분기 매출 685억,...
11.05 12:11
Southeast Asia’s Digit...

Summary | ZeroBOX

ShellWaitForProcess.exe

UPX OS Processor Check PE64 PE File

Category	Machine	Started	Completed
FILE	s1_win7_x6401	Sept. 25, 2024, 10:33 a.m.	Sept. 25, 2024, 10:46 a.m.

Size	14.5KB
Type	PE32+ executable (console) x86-64, for MS Windows
MD5	`e80d930390090acbf7353e9df7d1ac84`
SHA256	`0b271005f1686d1e28579727bfa40cf685bc499bb52118dbdec6de165e68a985`
CRC32	`EF7DCB51`
ssdeep	`192:4e6EVFiWAfzmgFyqjUlLveahGIsqZOcx8FFassgAV2863Q5tfncJ:4kFQ7mgFyqj0dhGtI3x813l`
PDB Path	C:\Users\admin\Desktop\Project\ShellWaitForProcess\x64\Release\ShellWaitForProcess.pdb
Yara	PE_Header_Zero - PE File Signature IsPE64 - (no description) UPX_Zero - UPX packed file OS_Processor_Check_Zero - OS Processor Check

Name	Response	Post-Analysis Lookup
No hosts contacted.

IP Address	Status	Action
164.124.101.2	Active	Moloch

Suricata Alerts

No Suricata Alerts

Suricata TLS

No Suricata TLS

This executable has a PDB path (1 event)

pdb_path

C:\Users\admin\Desktop\Project\ShellWaitForProcess\x64\Release\ShellWaitForProcess.pdb